Advanced Search
Content Type: News & Analysis
Today, travelling within many cities around the world comes at a cost: privacy.
Electronic ticketing systems are proliferating, but it’s not clear how much information they collect or what they do with it. Privacy International has written to 48 transport authorities and companies operating transport services across the world requesting this data.
The kinds of personal information held about users of London’s Oyster card (which is used to travel by tube, train and bus) include full…
Content Type: News & Analysis
Tuesday’s letter to Google CEO Larry Page, personally signed by 29 European data protection authorities, ordered the corporation (inter alia) to give users greater control over their personal information. The notions of trust and control are emphasised throughout the letter, and Google is urged to "…develop new tools to give users more control over their personal data" and "collect explicit consent for the combination of data for certain purposes". It is good news that the…
Content Type: News & Analysis
Greek newspaper To Vima reported late last night that Golden Dawn MP Ilias Panagiotaros has requested the exact data of "foreign infants and young children, by country of origin, who are in nursery schools" in Greece from the Greek Ministry of Interior (the equivalent of the British Home Office or US State Department). To Vima’s headline read 'Taking a leaf out of Herod’s book'.
The request echoes earlier demands made by the party for information about immigrants’ use…
Content Type: News & Analysis
Privacy International, Agentura.Ru, the Russian secret services watchdog, and Citizen Lab have joined forces to launch a new project entitled 'Russia’s Surveillance State'. The aims of the project are to undertake research and investigation into surveillance practices in Russia, including the trade in and use of surveillance technologies, and to publicise research and investigative findings to improve national and international awareness of surveillance and secrecy practices…
Content Type: News & Analysis
APEC privacy activity has passed another milestone with the acceptance in July 2012 of the USA as the first economy to formally join the cross border privacy rules (CBPR) system. The CBPR Joint Oversight Panel (JOP), with the Canadian chair of the Data Privacy Subgroup (DPS) standing in for the US member in accordance with the ‘no conflict of interest’ provisions, accepted the US government application, which nominated the Federal Trade Commission (FTC) as the privacy enforcement authority…
Content Type: News & Analysis
Privacy International welcomes the Select Committee Inquiry. We approach the proposed EU Data Protection Framework from the perspective of individual citizens and consumers.
We consider that this Inquiry and other consultations must take into account not just considerations of burdens to business and administrations, but also the fundamental rights of individuals to privacy and data protection that the UK has to comply with as a signatory to EU treaties and conventions.
The…
Content Type: News & Analysis
Anonymous proxy service HideMyAss.com - "a leading online privacy website" according to its own homepage - today admitted handing over user logs to law enforcement agencies.
We commend companies running privacy-protecting services. We need more like them. But we also need them to keep their word. Their website claims "Our free web proxy is a secure service that allows you to surf anonymously online in complete privacy" and their pro paid-for version promises that users can "…
Content Type: Advocacy
On 25th January 2012, the European Commission published a proposal that would comprehensively reform the European data protection legal regime. One aspect of its proposal, a new Regulation (the “Proposed Regulation”),(1) would modernise and further harmonise the data protection regime created by the Data Protection Directive (95/46/EC). Another aspect of the Commission’s proposal, a new Directive(2) (the “Proposed Directive”), would set out new rules on “the protection of individuals with…
Content Type: News & Analysis
On 25th January 2012, the European Commission published a proposal that would comprehensively reform the European data protection legal regime. One aspect of its proposal, a new Regulation (the “Proposed Regulation”),1 would modernise and further harmonise the data protection regime created by the Data Protection Directive (95/46/EC). Another aspect of the Commission’s proposal, a new Directive2 (the “Proposed Directive”), would set out new rules on “the protection of individuals with…
Content Type: Advocacy
On 25th January 2012, the European Commission published a proposal that would comprehensively reform the European data protection legal regime. One aspect of the proposal, a new Regulation (the “Proposed Regulation”),1 would modernise and further harmonise the data protection regime created by the Data Protection Directive (95/46/EC). Another aspect of the Commission’s proposal, a new Directive (the “Proposed Directive”), would set out new rules on “the protection of individuals with…
Content Type: News & Analysis
On 25th January 2012, the European Commission published a proposal that would comprehensively reform the European data protection legal regime. One aspect of the proposal, a new Regulation (the “Proposed Regulation”),1 would modernise and further harmonise the data protection regime created by the Data Protection Directive (95/46/EC). Another aspect of the Commission’s proposal, a new Directive (the “Proposed Directive”), would set out new rules on “the protection of individuals with…
Content Type: News & Analysis
A year ago this week, the UK government published a report entitled 'Transparent Government, Not Transparent Citizens', authored by Dr Kieron O’Hara. It made fourteen recommendations, the most important of which seem not to have been implemented. Meanwhile, the government continues to release data on citizens, and is accelerating these disclosures with some ambitious new policies.
This inaction on privacy and open data is particularly worrying given the UK’s leading role in open data and the…
Content Type: News & Analysis
As part of the government’s ambitious Open Data programme, the Cabinet Office announced last year that data from the National Pupil Database (NPD) will be made freely available and accessible to all. The NPD, previously only available to researchers on an academic licence, contains a record for every single state school pupil in the country, covering educational attainment from reception to sixth form, as well as characteristics such as attendance, ethnic background and free…
Content Type: News & Analysis
The UK Minister for Education, Michael Gove, today stated in Parliament that he would be moving forward his plans to open up the National Pupil Database, and announced a government consultation on the initiative. The Minister promised that "all requests to access extracts of data would go through a robust approval process and successful organisations would be subject to strict terms and conditions covering their handling and use of the data, including having…
Content Type: News & Analysis
Privacy Internationally has submitted two documents to the UK Parliament's Joint Committee reviewing the draft Communications Data Bill. The first submission is an implementation briefing based on our work for the Big Brother Incorporated project, establishing the capabilities and defects of existing surveillance technologies. The second submission focuses on the the majority of the Joint Committee's 21 questions about the social and ethical implications of increased communications…
Content Type: News & Analysis
The Home Office constantly insists that trafffic data is not about the content of the pages you look at, but about the sites you visit.
This would have made some sense in 1999 when RIPA was first being debated, but technology has moved on and new open data sources are now available. This allows for vastly more invasive tracking in 2012 than was envisaged in 2000. We’ve done a little bit of work on how…
The English Wikipedia contains 4 million articles, which contain 18 million links out…
Content Type: News & Analysis
Last week the Rwandan government tightened its grip on citizens when the parliament's lower house adopted legislation that sanctions the widespread monitoring of email and telephone communications.1 The bill is now awaiting Senate approval.
The law, an amendment to the 2008 Law Relating to the Interception of Communications,2 will empower the police, army and intelligence services to listen to and read private communications, both online and offline, in order to protect "public…
Content Type: News & Analysis
Modern communications surveillance policy is about gaining access to modern communications. The problem is that the discourse around communications policy today is almost the same as it was when it was simply a question of gaining access to telephone communications. "Police need access to social network activity just as they have access to phone calls" is the politician's line. We use Facebook as an example here, but most internet services will be similar in complexity and legality.
The…
Content Type: News & Analysis
In the PI office, we have daily debates about which platforms to use for our organizational operations. As a privacy charity, we are naturally concerned about the integrity of our own information services and resources, but we frequently receive queries about the best technologies to use from a variety of other organizations, some with very complex threat models.
The sad fact is that we are all poorly served by the range of services currently available. We worry that there is a significant…
Content Type: News & Analysis
Imagine a secret government list of suspicions and allegations, fuelled by unsubstantiated rumours provided by anonymous citizens with undisclosed intentions. The information contained in the list would not be measured against any legal burden of proof or supported by any credible evidence, but would – simply by its existence – become “fact”. Imagine, then, if the government could rely upon such “facts” to identify and implicate individuals for illegal behaviour. Such a system would be…
Content Type: News & Analysis
By now, UK internet users are probably familiar with major sites asking them to consent to the use of website cookies. This is prompted by the 'cookie law' (aka "Directive 2002/58 on Privacy and Electronic Communications", otherwise known as the E-Privacy Directive), which is proving a privacy trainwreck. Theoretically, the Directive was a good idea - a method of preventing companies secretly following a user from site to site across the web. However, ill-executed law can be worse than no law…
Content Type: News & Analysis
Governments have no automatic right of access to our communications. This will sound highly controversial to some, even downright radical. But the demands of national security and crime prevention do not, in fact, immediately trump every other right and responsibility in the complex relationship between citizen and state.
The recent Skype argument is a great example. Skype has always prided itself on being a secure method of communication. Businesses, government agencies, human…
Content Type: News & Analysis
Drones are back in the headlines, with the news that the Ministry of Defence plans to develop unmanned underwater vehicles for use in submarine warfare. Human rights groups have already raised concerns over the UK’s use of airborne military drones, which have played a key role in UK operations in Afghanistan since 2008. But drone technology is not limited to military uses: the deployment of ‘civilian’ drones, designed for use in home airspace, may be an emerging trend in UK policing.…
Content Type: News & Analysis
Hacking Team is a supplier of “lawful intercept” technology based in Milan. A regular attendee of surveillance industry conferences around the world, last year one of the company’s founding partners told the Guardian that Hacking Team had sold surveillance software to 30 countries across five continents.
Hacking Team’s marketing material promises that it can “defeat encryption” and “attack and control target PCs from a remote location” in a way that “cannot be detected”. The…
Content Type: News & Analysis
Earlier this year, Privacy International began research into the corporate social responsibility policies of companies that sell communications surveillance technology. Given that this technology is known to facilitate human rights abuses in repressive regimes around the world, surveillance tech companies that claims corporate responsibility might be expected to address such concerns in their CSR policy documents.
Of the 246 companies known to partake in the communications surveillance…
Content Type: News & Analysis
As part of Privacy International's investigation into the mass surveillance industry we have examined hundreds of legal documents, brochures and, most recently, patents. Patents are a form of intellectual property; patent-holders publicly disclose their inventions in exchange for the exclusive rights to use and commercialise them for a limited period of time. Patent registries therefore provide a window into the otherwise murky world of the mass surveillance industry.
We believe…
Content Type: News & Analysis
Last week’s revelation that Bahraini human rights activists have been targeted by advanced surveillance technology made by British company Gamma is yet another nail in the coffin of privacy and freedom of expression in Bahrain.
Over the past ten years, Bahraini citizens, among the most internet-connected in the Middle East, have been subjected to increasingly oppressive controls on and intrusions into their online and offline lives. The internet is heavily patrolled, and free…
Content Type: News & Analysis
The recent acquisition of Skype by Microsoft, coupled with a series of infrastructural changes, has resulted in a flurry of responses, concerns and analysis of exactly what kind of assistance Skype can provide to law enforcement agencies. Under this heightened scrutiny, Skype released a statement on their blog on 26th July, purporting to re-affirm their commitment to the privacy of their users.
Privacy International are delighted to read that Skype believes that…
Content Type: News & Analysis
Privacy International has compiled data on the privacy provisions in national constitutions around the world, including which countries have constitutional protections, whether they come from international agreements, what aspects of privacy are actually protected and when those protections were enacted. We are pleased to make this information available under a Creative Commons license for organizations, researchers, students and the community at large to use to support their work (…